摘要
为解决信息系统的内部安全管理问题,提出了一种基于分布式业务系统的内部安全管理解决方案。通过内部监控审计平台建设,实现对系统核心业务应用、数据库和系统日志3个级别的监控审计功能;根据规则库配置策略对监控审计数据进行采集、过滤、转换和存储,并通过数据交换平台汇聚到安全管理中心,从而实现对分布式业务系统的集中监控管理、统计分析和预警。结合具体应用,验证了该设计方案的有效性和准确性。
To solve the internal information system security management issues, a internal security management solutions based on distributed business systems is proposed, realizing the monitor and audit of core business applications, database, and system log-level, achieving audit data collection, filtering, conversion and storage based on rules repository policy. Through data ex change platform the distributed audit data is gathered to the security management center, for centralized monitoring management and statistical analysis, and alerting. With specific application, the validity and efficiency of the presented method is demonstrated.
出处
《计算机工程与设计》
CSCD
北大核心
2012年第4期1398-1402,共5页
Computer Engineering and Design
关键词
内部安全管理
监控审计
规则库
数据采集
过滤
转换
汇聚
internal security management
monitor and audit
rules repository
data collectiom filter~ conversiom aggregation
